GeneralInformation

Hostnames	hosted-by.mchost.ru pbsteel.ru www.pbsteel.ru
Domains	mchost.ru pbsteel.ru
Country	Russian Federation
City	Moscow
Organization	McHost.RU
ISP	EuroByte LLC
ASN	AS210079
Operating System	Ubuntu

WebTechnologies

CMS

1C-Bitrix

Ecommerce

1C-Bitrix

JavaScript libraries

jQuery2.2.4

Programming languages

PHP

Tag managers

Google Tag Manager

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

22 80 443

-2073943006 | 2024-04-16T20:38:48.295324

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDGhCHpNRrHPGuCl+7wj6+UaO94vFbcGJclbvDck/ZSTSSG
nEH/nbg7eDq+nmDhZ2Gza9xnsC+mQb8SVrEcboFV4ineThKMwBY9DgRCePxr4m0Iyjr5o7ziV/JJ
9fAScznV6du+hOibC3Go1i6qSDhAEOqoK2m54gMk1La3dN4+7SNAO0vLBK006eWEmaU/S333JMph
pxQx4kvQ71fs90FM556PjO1CnSCdo59evKhqEa1NfH2yvYzGu0aRttADNR7V/Y5cP4KmFw2wzomO
8VTnldl5lVuQJDtimkeeSHUPCMjLlXDKPr9kRjLQ3WYLToVblBEg0MQZzn0HDh7dmIgpNSx5f2Co
vO0DB0STL/JfFqYH6C/BBvd07JGOZjK+tZk7n35idCYLn/xJlihZ5qPR6hTgQvhygWms5AhZjYqC
EoyPVpuUAJWVZ7Oa+7ctshT3JKQpIojOOVP/2DgiYLJK6WbrjDItvEBJS1nF4AiC0z54Z7HqnkTq
u0Ni/Pd2x+E=
Fingerprint: ef:8a:02:f7:44:82:f5:c7:73:b3:a6:87:cf:af:65:23

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-22T09:44:38.879742

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 09:44:37 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://178.208.94.150/

10103885 | 2024-04-22T15:48:11.557410

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 15:48:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (6ccb05dda9192ad732bca4e92fcc109f)
Set-Cookie: PHPSESSID=SWgXK6l2bcIGdq7nc5rnhl0nkgU7pH2P; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:09:26:b5:4d:e2:bb:4d:97:a7:63:70:ed:e8:85:f1:4a:3f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  2 08:43:36 2024 GMT
            Not After : Jul  1 08:43:35 2024 GMT
        Subject: CN=pbsteel.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:de:fd:c5:03:35:da:95:eb:7d:27:16:8d:f1:86:
                    ba:37:4a:06:0a:37:e9:93:86:0c:49:63:85:c0:1f:
                    74:6e:a0:f5:1c:1f:c3:69:f3:87:af:9a:56:2d:ee:
                    b1:ba:bc:09:5f:ca:ea:a2:9a:7f:41:4b:ac:62:d6:
                    37:39:6f:76:26:6c:fa:41:06:38:4b:f0:9d:36:08:
                    fb:51:70:09:6a:84:4b:0f:05:03:b6:42:e9:f1:14:
                    b0:c4:57:3d:e9:30:1d:76:9b:33:a7:be:2a:c9:08:
                    56:f8:6f:69:32:41:46:8e:81:41:ec:9a:c4:43:55:
                    09:ac:67:fd:a4:a4:9a:17:29:da:20:55:d4:40:f2:
                    dc:53:b3:00:c3:9d:ce:6e:de:b1:c5:13:84:f3:22:
                    34:47:d9:75:d4:db:af:78:58:63:24:ab:63:3a:ad:
                    3b:9b:04:84:c8:84:cf:85:16:81:9b:ea:ab:53:eb:
                    9b:3d:c5:e3:12:86:b5:cd:e4:ef:fb:e4:08:08:24:
                    df:36:95:c0:25:92:08:07:a5:39:20:e2:80:2b:86:
                    ba:5b:36:9f:74:45:86:82:a0:00:6d:41:42:4a:92:
                    b9:bb:c7:31:1f:45:d2:00:09:06:8e:90:ee:dd:02:
                    8d:37:49:3d:cf:8b:93:01:d6:48:e6:ed:60:46:ec:
                    36:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5B:01:15:47:64:44:6B:96:5A:F5:1A:63:84:AD:18:1F:38:A7:90:44
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:pbsteel.ru, DNS:www.pbsteel.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  2 09:43:36.811 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AB:3E:F9:C5:E4:79:14:43:81:C4:B5:
                                A2:AF:52:F8:01:4A:3F:E1:7B:21:CC:A9:24:CE:3B:10:
                                9F:EB:49:B3:A4:02:21:00:B1:C8:00:C0:EE:43:C2:09:
                                85:9B:19:0F:51:68:5D:9B:77:78:94:49:95:D9:0E:D5:
                                1B:64:1E:94:32:2B:1F:4C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  2 09:43:36.851 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D1:9D:AC:3C:C4:E7:81:F8:A2:73:30:
                                33:07:A0:82:F2:B1:4E:E9:BD:F7:95:FC:1B:85:0E:96:
                                C2:CB:F0:3F:76:02:20:0E:DE:B3:4D:12:33:2E:64:0B:
                                7E:7D:57:BD:B8:1C:70:A7:54:CF:6B:C0:78:0B:DA:4A:
                                88:B6:B9:FE:51:57:E4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8d:d6:23:c1:40:45:b4:cb:13:2b:05:7a:f6:5f:24:3e:7d:81:
        d4:ab:3f:92:22:fc:66:85:cd:01:05:f8:f9:ca:71:24:e9:13:
        2e:3e:50:7d:f3:de:4a:78:a1:f0:c1:20:11:8d:6a:b1:68:76:
        c3:0d:4b:06:f1:17:ce:1c:25:af:49:eb:ba:2d:25:8f:e3:b0:
        cb:66:b6:0c:7a:7d:c6:13:f0:b0:2a:15:b3:cd:4e:e7:a3:b8:
        b6:7b:7c:67:6e:4f:9f:b9:c1:cf:42:d8:f2:ba:d1:c3:8a:a6:
        5a:72:3d:6a:df:15:08:06:cf:65:c1:66:d3:91:e8:1d:2e:6f:
        f8:e7:07:8a:a9:40:1c:33:22:a3:9e:21:d4:5d:64:e8:77:b5:
        47:a1:f4:ad:ce:44:d1:59:8b:c7:f1:c3:4f:95:9d:e3:04:7e:
        c7:be:05:71:a4:1a:f1:4f:a4:3a:86:9c:9b:90:e2:7b:c9:69:
        3b:fe:7d:f5:c8:6f:04:d2:38:4c:58:df:b0:a6:0a:7e:32:85:
        ae:ca:2f:c4:0f:4b:28:c9:15:9f:8a:24:6b:6a:3f:7b:c3:13:
        a9:a4:e7:cb:e0:c9:f0:d7:6a:78:5b:2a:8c:72:ee:0d:09:9e:
        69:0e:a2:a2:29:01:59:88:c0:69:b1:08:50:5a:46:cc:55:b2:
        d9:dd:c7:0d

178.208.94.150

Last Seen: 2024-04-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2073943006 | 2024-04-16T20:38:48.295324
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.3

589765266 | 2024-04-22T09:44:38.879742
80 / tcp

nginx1.18.0

10103885 | 2024-04-22T15:48:11.557410
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

178.208.94.150

Last Seen: 2024-04-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2073943006 | 2024-04-16T20:38:48.295324 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.3

589765266 | 2024-04-22T09:44:38.879742 80 / tcp

nginx1.18.0

10103885 | 2024-04-22T15:48:11.557410 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-2073943006 | 2024-04-16T20:38:48.295324
22 / tcp

589765266 | 2024-04-22T09:44:38.879742
80 / tcp

10103885 | 2024-04-22T15:48:11.557410
443 / tcp